|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
secure file transfer with public key
Post 302273731 by Perderabo on Monday 5th of January 2009 03:58:02 PM
01-05-2009
I don't understand how FTP is insisting for encryption. 
But you need to use gpg. It comes with most Linux distros and it is available on sunfreeware for Solaris.
First you need some keys of your own. You can do without, but you will be constantly fighting the program. So do:
pgp --gen-key
It will ask questions...take the defaults where provided and answer the others.
Next import that key you have:
pgp --import somefilecontainingkey
Now you should be able to list that key you imported...
pgp --list-keys
Sign the key you imported to assert that you trust it. This is why you needed to generate your own keys.
pgp --sign-key keyid
There should be an email address associated with that key. Let's say it is joe.blow@sample.com. Also let's say you have a file called secret.txt to send. So do:
gpg --recipient joe.blow@sample.com --encrypt secret.txt
This creates a file called secret.txt.pgp. Now you ftp secret.txt.pgp to the other end. When Joe Blow wants to decrypt the file, he will use:
gpg secret.txt.gpg
And a file called secret.txt will appear in his directory.
I have tried all of these steps between a Linux and a Solaris system and they worked for me. Your mileage may vary depending on your setup.
But you need to use gpg. It comes with most Linux distros and it is available on sunfreeware for Solaris.
First you need some keys of your own. You can do without, but you will be constantly fighting the program. So do:
pgp --gen-key
It will ask questions...take the defaults where provided and answer the others.
Next import that key you have:
pgp --import somefilecontainingkey
Now you should be able to list that key you imported...
pgp --list-keys
Sign the key you imported to assert that you trust it. This is why you needed to generate your own keys.
pgp --sign-key keyid
There should be an email address associated with that key. Let's say it is joe.blow@sample.com. Also let's say you have a file called secret.txt to send. So do:
gpg --recipient joe.blow@sample.com --encrypt secret.txt
This creates a file called secret.txt.pgp. Now you ftp secret.txt.pgp to the other end. When Joe Blow wants to decrypt the file, he will use:
gpg secret.txt.gpg
And a file called secret.txt will appear in his directory.
I have tried all of these steps between a Linux and a Solaris system and they worked for me. Your mileage may vary depending on your setup.
|
|
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
When should one have to generate a public key on a Server when the public key is already created and used by other clients?
Thanks,
Rahul. (6 Replies)
Discussion started by: rahulrathod
6 Replies
2. AIX
If I use SSh Secure File Transfer tool on Windows, I want to transfer file from windows to AIX without password, how to do it? (6 Replies)
Discussion started by: rainbow_bean
6 Replies
3. Cybersecurity
Hi guys,
I would like to transfer files from UNIX machine to Mainframe system (using UNIX machine as client). The transfer process needs to be secure (i.e. data sent thro network should be encrypted using 128-bit encryption algorithm). I came to know that SFTP server is not available for Mainframe... (3 Replies)
Discussion started by: sydneymoon
3 Replies
4. Shell Programming and Scripting
Hi all, I am running a large scale business and some time I have to transfer large and very important data files to my business partner. I fear about my data because there are many of my business competitors who will definitely try to steal my important data. So there is huge amount of risk... (0 Replies)
Discussion started by: camden
0 Replies
5. Shell Programming and Scripting
Hi,
Is there any protocol other than SFTP to transfer the file using secured connection SSH. ?
Regards,
Arthik (2 Replies)
Discussion started by: arthikbabu
2 Replies
6. Shell Programming and Scripting
Hi,
i was provided with
1. Server IP (Remote)
2. Username and Password (worked when tested basic FTP)
3. Their Public key (GnuPG v1.0.6)
They refuse when i upload using basic FTP and insists for encryption.
I have Solaris 10 and Linux in my environment.
How can i encrypt and upload... (0 Replies)
Discussion started by: prvnrk
0 Replies
7. UNIX for Dummies Questions & Answers
Hi all
Ive setup a VSFTPD server and im forcing SSL encryption. I have made a key and it works perfectly.
I have a client who wants to connect but is using software that needs the key to be added before he can connect.
Does he need me to send the key i created and that the VSFTPD.conf... (0 Replies)
Discussion started by: mokachoka
0 Replies
8. UNIX and Linux Applications
I am developing an application that submits command line file transfers using ssh (Sun to Sun) and Tectia ssh (Sun to Windows Server) embedded in the code. Potentially many different trusted people will start the programs. Is there a way to have all the settings and keys localized so that there is... (0 Replies)
Discussion started by: PowersThatB
0 Replies
9. Solaris
Hi, I've used the following way to set ssh public key authentication and it is working fine on Solaris 10, RedHat Linux and SuSE Linux servers without any problem. But I got error 'Server refused our key' on Solaris 8 system. Solaris 8 uses SSH2 too. Why? Please help. Thanks.
... (1 Reply)
Discussion started by: aixlover
1 Replies
10. UNIX for Advanced & Expert Users
Using RCP command we can transfer file from one server to another server.
While transferring we can rename the file also e.g.
File name = FILE123.txt (lying on Source server = oldserver)
Target Server Name = newyour
Renamed File = FILE456.txt
rcp FILE123.txt newyour:./FILE456.txt... (1 Reply)
Discussion started by: Pash
1 Replies
LEARN ABOUT DEBIAN
gnupg::key
GnuPG::Key(3pm) User Contributed Perl Documentation GnuPG::Key(3pm) NAME
GnuPG::Key - GnuPG Key Object SYNOPSIS
# assumes a GnuPG::Interface object in $gnupg my @keys = $gnupg->get_public_keys( 'ftobin' ); # now GnuPG::PublicKey objects are in @keys DESCRIPTION
GnuPG::Key objects are generally not instantiated on their own, but rather used as a superclass of GnuPG::PublicKey, GnuPG::SecretKey, or GnuPG::SubKey objects. OBJECT METHODS
Initialization Methods new( %initialization_args ) This methods creates a new object. The optional arguments are initialization of data members. hash_init( %args ). short_hex_id This returns the commonly-used short, 8 character short hex id of the key. compare( $other, $deep ) Returns non-zero only when this Key is identical to the other GnuPG::Key. If $deep is present and non-zero, the key's associated signatures, revocations, and revokers will also be compared. OBJECT DATA MEMBERS
length Number of bits in the key. algo_num They algorithm number that the Key is used for. usage flags The Key Usage flags associated with this key, represented as a string of lower-case letters. Possible values include: (a) authenticate, (c) certify, (e) encrypt, and (s) sign. A key may have any combination of them in any order. In addition to these letters, the primary key has uppercase versions of the letters to denote the _usable_ capabilities of the entire key, and a potential letter 'D' to indicate a disabled key. See "key capabilities" DETAILS from the GnuPG sources for more details. hex_data The data of the key. WARNING: this seems to have never been instantiated, and should always be undef. pubkey_data A list of Math::BigInt objects that correspond to the public key material for the given key (this member is empty on secret keys). For DSA keys, the values are: prime (p), group order (q), group generator (g), y For RSA keys, the values are: modulus (n), exponent (e) For El Gamal keys, the values are: prime (p), group generator (g), y For more details, see: http://tools.ietf.org/html/rfc4880#page-42 hex_id The long hex id of the key. This is not the fingerprint nor the short hex id, which is 8 hex characters. creation_date_string expiration_date_string Formatted date of the key's creation and expiration. If the key has no expiration, expiration_date_string will return undef. creation_date expiration_date Date of the key's creation and expiration, stored as the number of seconds since midnight 1970-01-01 UTC. If the key has no expiration, expiration_date will return undef. fingerprint A GnuPG::Fingerprint object. signatures A list of GnuPG::Signature objects embodying the signatures on this key. For subkeys, the signatures are usually subkey-binding signatures. For primary keys, the signatures are statements about the key itself. revocations A list of revocations associated with this key, stored as GnuPG::Signature objects (since revocations are a type of certification as well). Note that a revocation of a primary key has a different semantic meaning than a revocation associated with a subkey. revokers A list of GnuPG::Revoker objects associated with this key, indicating other keys which are allowed to revoke certifications made by this key. SEE ALSO
GnuPG::Fingerprint, GnuPG::Signature, GnuPG::Revoker, perl v5.12.4 2010-06-07 GnuPG::Key(3pm)